Auditing GDPR Compliance

The Lower Saxony Data Protection Authority has released the checklist that it uses in assessing an organisations’ GDPR readiness. In total, the checklist consists of ten categories of questions covering:

1. GDPR readiness
2. Records of processing activities (ROPAs)
3. Legal bases for data processing
4. Data subject rights
5. Data security
6. Data protection impact assessment (DPIA)
7. Data processing agreements
8. Data protection officer (DPO)
9. Data breach notifications
10. Accountability

The main objective of the audits is to determine where organisations still have compliance gaps.

If your organisation would like to determine where your GDPR compliance gaps are please click here The book has questions and guidance notes covering the ten categories listed above.

I also offer a more extensive GDPR audit complete with a written audit report. If this service interests you please feel free to contact me for further details.